From 450039b7f91f37acc742413af596cc4abb5af6ae Mon Sep 17 00:00:00 2001
From: Oleg Bondarev <obondarev@mirantis.com>
Date: Tue, 13 Aug 2019 18:10:49 +0400
Subject: Use secure sha256 instead of sha1

Fix for bandit B303: Use of insecure MD2, MD4, MD5, or SHA1 hash function.

Change-Id: I00403d7bd3b40ae00420e6cddcf40f45488284a9
Partial-Bug: #1759250
(cherry picked from commit ab426a791ad1937ea2cf3b340202b3968a378978)
(cherry picked from commit 62f4868e6e240ebbb4d6e29b8c1e1d23a24fcc15)
---
 neutronclient/common/utils.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/neutronclient/common/utils.py b/neutronclient/common/utils.py
index 3a0469d..b61ee3b 100644
--- a/neutronclient/common/utils.py
+++ b/neutronclient/common/utils.py
@@ -183,9 +183,9 @@ def http_log_req(_logger, args, kwargs):
     for (key, value) in six.iteritems(kwargs['headers']):
         if key in SENSITIVE_HEADERS:
             v = value.encode('utf-8')
-            h = hashlib.sha1(v)
+            h = hashlib.sha256(v)
             d = h.hexdigest()
-            value = "{SHA1}%s" % d
+            value = "{SHA256}%s" % d
         header = ' -H "%s: %s"' % (key, value)
         string_parts.append(header)
 
-- 
cgit v1.2.1